MidnightBSD

Advisories for online_hotel_management_system_project

CVE-2023-34486

itsourcecode Online Hotel Management System Project In PHP v1.0.0 is vulnerable to Cross Site Scripting (XSS). Remote code execution can be achieved by entering malicious code in the date selection box.

Products Affected

Vendor Product Version
online_hotel_management_system_project online_hotel_management_system 1.0.0
CVE-2023-34487

itsourcecode Online Hotel Management System Project In PHP v1.0.0 is vulnerable to SQL Injection. SQL injection points exist in the login password input box. This vulnerability can be exploited through time-based blind injection.

Products Affected

Vendor Product Version
online_hotel_management_system_project online_hotel_management_system 1.0.0